Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Using vlan1 on Cisco switches and router

What are reasons why vlan1 should not be used on Cisco switches and routers?

4 REPLIES
Anonymous
N/A

Re: Using vlan1 on Cisco switches and router

The only significant thing about VLAN 1 is it's the default VLAN. Switch security can be enhanced by moving the management interface out of VLAN 1, but that's about it.

New Member

Re: Using vlan1 on Cisco switches and router

when i design a campus, i like to leave all user access and the management VLAN off of VLAN 1.

The argument is that when someone comes along and installs a switch without bothering to configure it - it wont work. So they cant mess up my carefully designed network by ignoring config.

Of course they can still get the config wrong, but this way they have to think about the config before the ports can talk to anything on another switch.

Stephen

New Member

Re: Using vlan1 on Cisco switches and router

when i design a campus, i like to leave all user access and the management VLAN off of VLAN 1.

The argument is that when someone comes along and installs a switch without bothering to configure it - it wont work. So they cant mess up my carefully designed network by ignoring config.

Of course they can still get the config wrong, but this way they have to think about the config before the ports can talk to anything on another switch.

Stephen

Cisco Employee

Re: Using vlan1 on Cisco switches and router

VLAN1 is usually the management VLAN. It is then recommended not to use it to carry "normal" data. This way, if a broadcast storm occurs in a data vlan for instance, switches can still be accessed via the management VLAN.

267
Views
0
Helpful
4
Replies